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Method And Apparatus for Automatically Configuring a Network Device 

FIELD OF THE INVENTION 
[0001] The present invention generally relates to computer network communications. 
The invention relates more specifically to a method and apparatus for automatically 
configuring a network device. Further, techniques providing configuration customization for 
network service providers are disclosed. 

BACKGROUND OF THE INVENTION 
[0002] The approaches described in this section could be pursued, but are not necessarily 
approaches that have been previously conceived or pursued. Therefore, unless otherwise 
indicated herein, the approaches described in this section are not prior art to the claims in this 
application and are not admitted to be prior art by inclusion in this section. 
[0003] Network service providers are in the business of providing network service, such 
as Internet access, to service subscribers. Many network service providers supply a network 
interface device, such as a residential broadband gateway or router, foruse at the customer 
premises. Such devices may be termed customer premises equipment or "CPE" devices. 
[0004] In one arrangement, a vendor or manufacturer separate from the service provider 
manufactures the CPE devices. The vendor or manufacturer loads each CPE device with a set 
of configuration commands. When a new subscriber arranges for service, either the service 
provider or the vendor ships a CPE device to the new subscriber. When the subscriber places 
the CPE device in service, the configuration within the CPE device enables the device to 
connect to the service provider. 

[0005] In one approach, the vendor or manufacturer also loads each CPE device with 
device management software that enables the subscriber to locally configure or troubleshoot 
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the device. The service provider typically works closely with the manufacturer or vendor of 
the device management software to determine the configuration that is needed for the 
subscriber to connect to the service provider's network. 

[0006] However, when a new configuration command or a change in a configuration 
parameter is introduced, corresponding changes typically also are required in the device 
management software. Further, different service providers may desire to provide the device 
management software with a different "look and feel," or may desire to have the device 
collect and process different configuration parameter values that are supplied by a user. In 
these cases, technical staff of the service provider must coordinate with the manufacturer of 
the device management software to arrange for modification of the device management 
software, because the manufacturer has custody and control of the associated source code, 
and has the technical staff necessary to accomplish the changes. 

[0007] Unfortunately, this approach results in delaying the deployment of the updated 
device management software to the market. In addition, multiple deployments may be 
needed, which is disruptive to the service provider and its customers. Thus, this approach has 
significant drawbacks. 

[0008] Based on the foregoing, there is a clear need for an improved method of applying 
changes to a device management software application. 

[0009] There is a particular need for an approach that allows the service provider to 
implement certain changes in the behavior of the device management software without 
interacting with the manufacturer of the software, or by implementing the changes 
exclusively at the service provider's premises before devices are shipped to customer 
premises. It would be useful if such an approach would be compatible with existing 
"touchless" configuration and deployment systems. 
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BRIEF DESCRIPTION OF THE DRAWINGS 
[0010] The present invention is illustrated by way of example, and not by way of 
limitation, in the figures of the accompanying drawings and in which like reference numerals 
refer to similar elements and in which: 

[001 1 ] FIG. 1 A is a block diagram that illustrates an overview of a network context in 
which an embodiment may be used; 

[0012] FIG. IB is a block diagram showing further details of the context of FIG. 1 A; 
[0013] FIG. 2 is a flow diagram that illustrates a high level overview of one embodiment 
of a method for automatically configuring a network device; 

[0014] FIG. 3 is a flow diagram that illustrates another embodiment of a method for 
automatically configuring a network device; 

[0015] FIG. 4 is a block diagram of the network context of FIG. 1 A showing messages 
and communications that are carried out as part of performing the process of FIG. 2; and 
[0016] FIG. 5 is a block diagram that illustrates a computer system upon which an 
embodiment may be implemented. 
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DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT 
[0017] A method and apparatus for providing automatically generating a network device 
configuration is described. In the following description, for the purposes of explanation, 
numerous specific details are set forth in order to provide a thorough understanding of the 
present invention. It will be apparent, however, to one skilled in the art that the present 
invention may be practiced without these specific details. In other instances, well-known 
structures and devices are shown in block diagram form in order to avoid unnecessarily 
obscuring the present invention. 

[0018] Embodiments are described herein according to the following outline: 

1 .0 General Overview 

2.0 Structural and Functional Overview 

3.0 Method of Automatically Generating a Network Device Configuration 

4.0 Implementation Mechanisms — Hardware Overview 

5.0 Extensions and Alternatives 

1 .0 GENERAL OVERVIEW 

[0019] The needs identified in the foregoing Background, and other needs and objects 
that will become apparent for the following description, are achieved in the present 
invention, which comprises, in one aspect, a method and apparatus for automatically 
generating a configuration for a network device. In one embodiment, the method comprises 
the computer-implemented steps of receiving a partial configuration for a network device, 
wherein the partial configuration comprises a plurality of configuration commands, wherein 
each of one or more of the configuration commands is associated with one of a plurality of 
user interface elements; parsing the partial configuration to identify the user interface 
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elements; generating a user interface page based on the user interface elements; receiving one 
or more configuration parameter values via the user interface page; and substituting the 
configuration parameter values into the partial configuration to result in creating a complete 
configuration for the device. 

[0020] According to one feature, the partial configuration is stored in non-volatile 
memory of the network device prior to shipment of the network device to a user. In another 
feature, the partial configuration comprises an electronic configuration template that is stored 
in non-volatile memory of the network device prior to shipment of the network device from a 
service provider or vendor to a user. In yet another feature, the network device comprises a 
customer premises equipment (CPE) device. 

[0021] According to another feature, each of the user interface elements comprises a data 
variable name, a user interface string value, and a data type value. In a related feature, the 
user interface string value comprises a sequence of characters for display in the user interface 
page as part of a prompt for entering an associated configuration parameter value. In still 
another feature, the data type value specifies a data type associated with the user interface 
element for use in determining validity of the received configuration parameter values. The 
data type value may be selected from among a set consisting of IP address, subnet mask, dial 
pattern, virtual channel identifier, virtual path identifier, username, password, gateway, 
hostname, group name, group key, and peer IP address. 

[0022] In yet another feature, the partial configuration further comprises one or more 
dynamic tags that are not associated with user interface elements, and the method further 
comprises the steps of parsing the partial configuration to identify the dynamic tags, and 
substituting a configuration parameter value for each of the dynamic tags as part of the 
complete configuration. 
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[0023] In another feature, each of the user interface elements comprises a user interface 
string value, and the step of generating a user interface page comprises generating an 
electronic document that is displayable by an end user computer system that is 
communicatively coupled to the network device, the electronic document includes the user 
interface string value; and causing the network device to display the electronic document 
using the end user computer system. In a related feature, each of the user interface elements 
comprises a data variable name, a user interface string value, and a data type value, and the 
method further comprises the steps of generating an electronic document that is displayable 
by an end user computer system that is communicatively coupled to the network device, the 
electronic document includes the user interface string value; causing the network device to 
display the electronic document using the end user computer system; associating one of the 
configuration parameter values with the data variable name; and determining whether a data 
type of the one of the configuration parameter values matches the data type value. 
[0024] In another aspect, a method of enabling a network service provider to customize a 
configuration of a network device is provided, comprising the computer-implemented steps 
of creating and storing a partial configuration for a network device within the network 
device, wherein the partial configuration comprises a plurality of configuration commands, 
wherein each of one or more of the configuration commands is associated with one of a 
plurality of user interface elements; and providing the network device with the partial 
configuration to an end user, wherein setup of the network device causes the network device 
to perform the steps of parsing the partial configuration to identify the user interface 
elements; generating a user interface page based on the user interface elements; receiving one 
or more configuration parameter values via the user interface page; and substituting the 
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configuration parameter values into the partial configuration to result in creating a complete 
configuration for the device. 

[0025] In other aspects, the invention encompasses a computer apparatus and a 
computer-readable medium configured to carry out the foregoing steps. 

2.0 STRUCTURAL AND FUNCTIONAL OVERVIEW 

[0026] The approaches herein generally relate to automatically generating a network 
device configuration. FIG. 1 A is a block diagram that illustrates an overview of a network 
context in which an embodiment may be used. FIG. IB is a block diagram showing further 
details of the context of FIG. 1 A. Referring first to FIG. 1 A, a system 100 comprises a 
Device Vendor 110 of a Device 130, a Service Provider 120 that provides network 
connectivity for the Device, and a Subscriber Premises 140 at which the Device is located. A 
user 142 at Subscriber Premises 140 is associated with the Device 130. Although vendors, 
service providers, and subscribers may order many devices, for the purposes of illustrating a 
clear example, FIG. 1 A includes one such device. 

[0027] Vendor 1 10, Service Provider 120, and Subscriber 140 may communicate 
electronically or through manual means. As one example, Vendor 1 10 is communicatively 
coupled to Service Provider 120 and to Subscriber 140 through a network 105, which may 
comprise one or more local area networks, wide area networks, internetworks, etc. At various 
times or points in the processes described herein, Device 130 is located within domains of 
Vendor 110, Service Provider 120, or Subscriber 140, as indicated by dashed lines 106a, 
106b, 106c. FIG. 1A shows an arrangement in which Device 130 has been received at 
Subscriber 140. 
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[0028] Device 130 comprises a Device Manager 132 that executes under supervision and 
control of an Operating System 131. Device 130 also has non- volatile memory 134 that 
stores a configuration template 136. In one specific embodiment, Device 130 is a Cisco 800 
Series Router from Cisco Systems, Inc., San Jose, California. In this embodiment, Operating 
System 131 is Cisco IOS® Software, and Device Manager 132 is Cisco Router Web Setup. 
Device 130 also may have many other software applications and hardware elements that are 
omitted from FIG. 1 A for simplicity. 

[0029] Referring now to FIG. IB, Device 130 may be initially manufactured by a 
Manufacturing Division 112 of Vendor 110. At the time of manufacturing, a Configuration 
System 1 12A creates and stores a Generic Configuration 1 12B in Device 130. The stored 
Generic Configuration 1 12B may be known as an Installed Configuration 132. The Installed 
Configuration 132 may include commands for establishing basic connectivity to network 105 
or to Service Provider 120. In the approaches herein, the Generic Configuration 1 12B may 
comprise a template that is processed, as further described below, to result in creating the 
Installed Configuration 132. 

[0030] Vendor 110 may comprise a Purchasing Division 1 1 1 to handle orders from 
Service Provider 120 for Device 130. According to one embodiment, Purchasing Division 
111 comprises an Order Entry application 1 1 1 A for communicating purchasing information 
from Vendor 1 10 to Service Provider 120. The Order Entry application 1 1 1 A is used to 
receive orders from Service Provider 120 and inform the Service Provider about the status of 
orders and manufacturing activities. 

[0031] Configuration System 1 12A is a mechanism, provided by the Manufacturing 
Division 112, for the Service Provider 120 to communicate the configuration that the Service 
Provider 120 wants the Vendor 1 10 to use as the Installed Configuration 132 for a particular 
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order or Device 130. According to one embodiment, Configuration System 1 12A is 
Configuration Express as provided by Cisco Systems, Inc., San Jose, California. Service 
Provider 120 communicates the Generic Configuration 1 12B to the Vendor 110 through 
Configuration System 1 12 A. According to one embodiment, the Generic Configuration 
1 12B is a bootstrap configuration that is loaded as the Installed Configuration 132 of Device 
130 when manufacturing of Device 130 is complete. 

[0032] According to one embodiment, the Generic Configuration 1 12B comprises a 
bootstrap configuration. The Generic Configuration 112B contains instructions which, when 
executed by Device 130, enable the Device to determine which of several line cards or 
interfaces in the Device can communicate through network 105 to Configuration Server 122. 
Specific processes for self-discovering a connected interface are described further below. 
[0033] In one embodiment, Service Provider 120 comprises an Engineering Division 
121, a Purchasing Agent 125, a Configuration Template 124, a Configuration Server 122, 
and Management Point Systems 126. Engineering Division 121 defines the Generic 
Configuration 1 12B and communicates the Generic Configuration 1 12B to the Vendor 110 
with the Configuration System 1 12 A. Alternatively, Engineering Division 121 defines the 
Configuration Template 124 and communicates it to Vendor 1 10 for loading into Device 130 
as part of manufacturing. 

[0034] According to one embodiment, Purchasing Agent 125 places an order with the 
Vendor 1 12 for a device to be used by Subscriber 140. 

[0035] According to one embodiment, Configuration Template 124 is a partially 
complete configuration that the Service Provider 120 specifically wants installed as the 
Installed Configuration 132 for Device 130 for Subscriber 140. For example, the 
Configuration Template 124 may contain commands that are associated with user interface 
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prompts and related user interface information specific to Service Provider 120 or specific to 
an operating environment or business environment of Subscriber 140. The Configuration 
Template 124 contains one or more commands with user interface elements or elements. 
Values received from the user are substituted into the template to result in creating a final 
device configuration. 

[0036] Thus, while the Generic Configuration 1 12B may be sufficient for initial 
configuration of all devices deployed by any service provider, a particular Service Provider 
120 may wish to provide a particular configuration or user interface for a particular 
Subscriber 140 or for all its subscribers. In an embodiment, the user interface of a device 
manager executed by Device 130 is driven based on the Configuration Template 124. 
Further, a final device configuration for Device 130 is created based on populating the 
Configuration Template 124 with values received from a user in response to prompts or other 
user interface information that is defined in the Configuration Template. Specific 
mechanisms for generating a user interface, receiving values, substituting values and 
generating a final configuration based on a template are described further below. 
[0037] According to one embodiment, Configuration Template 124 contains one or more 
configuration commands that are associated with tags. The tags specify a data variable name, 
a user interface prompt string, and a data type. Using mechanisms described further below, 
the Device Manager 132 processes Configuration Template 124 by generating one or more 
user interface pages that include the user interface prompt strings. Configuration parameter 
values that match the data type are temporarily stored in the data variables. A final 
configuration for the Device 130 is created by substituting the received configuration 
parameter values into the Configuration Template 124. The final configuration is stored in 
Device 130 and is applied to the device as the Installed Configuration 132. 
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[0038] According to one embodiment, Device 130 then contacts Configuration Server 
122 and receives further configuration information, if necessary or appropriate. According to 
one embodiment, the Configuration Server 1 12 is the Cisco CNS 2100 Series Intelligence 
Engine, from Cisco Systems, Inc. 

[0039] According to one embodiment, Management Point Systems 126 are systems that 
are interested in Device 130, its inventory, or information that it generates. Examples of 
Management Point Systems 126 include, but are not limited to, billing systems, provisioning 
systems, and fault detection systems. As depicted, Management Point Systems 126 are part 
of Service Provider 120, however, Management Point Systems 126 may be any systems that 
are informed when inventory in Device 130 changes or when other events of interest occur 
with respect to the Device. 

[0040] Restated more generally, a network device is manufactured at a manufacturing 
location. During the manufacturing process, a partial configuration, or generic configuration 
template, is stored in non-volatile device memory. The generic configuration template 
comprises certain configuration commands that are associated with user interface elements. 
Each of the user interface elements consists of a set of tags that define a data variable, and 
text for a user interface page that prompts a user to enter a value for the data variable. 
[0041] When the device is placed in service, a configuration manager in the device reads 
the generic configuration template and dynamically creates and populates a user interface 
page using the text component of the user interface elements. The user interface page is 
displayed to the user on a display of a computer system that is coupled to the router. The user 
enters one or more configuration parameter values using the user interface. A final device 
configuration is generated based on substituting the user parameter values into the 
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configuration template. The final device configuration is stored in the device and applied to 
the device. The device then operates according to the final device configuration. 
[0042] In one specific approach, a configuration template file is stored in flash memory of 
a router. A device management tool reads the configuration template and parses it to identify 
user interface strings. The parsed strings are used to generate the user interface. The parsed 
strings identify configuration parameter values that are user is required to enter as part of 
initially placing the device in service. Once the user enters values for the configuration 
parameters, the device management tool substitutes the user-entered values into the 
configuration template and generates the complete configuration. 

[0043] In one embodiment, a device is shipped to a network service provider, such as an 
ISP, with a default generic configuration template. The service provider can modify the 
generic configuration template to create a new generic configuration template that reflects 
specific preferences of the service provider. In this approach, the user interface string values 
in the generic configuration template typically reflect specific preferences of the service 
provider, or specific information that the service provider wishes to display to the user. The 
default configuration provided by the device management tool is replaced with the new 
customized configuration generated based on the template file provided by the service 
provider. 

[0044] Using these approaches, service providers can deploy new configurations to large 
numbers of users without having to re-build the device management tool. By changing only 
the generic configuration template file, the behavior of the device management tool is 
automatically modified. For example, a user interface specific to the service provider is 
generated. 
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[0045] Further, the custom configuration based template file may be placed outside the 
build package of the device management tool, and loaded directly into the non-volatile 
memory of the device. This helps the service provider to deploy the new configuration easily, 
without support from the vendor that created the management tool. For example, the service 
provider can place the template on one of its server, and request its customers to download 
the template to the non-volatile memory of the device. Thus, the service provider avoids 
having to provide personalized service, or a "truck roll," to accomplish a configuration 
change. 

3.0 METHOD OF AUTOMATICALLY GENERATING A NETWORK DEVICE 
CONFIGURATION 

[0046] FIG. 2 is a flow diagram that illustrates a high level overview of one embodiment 
of a method for automatically configuring a network device. FIG. 2 represents steps that 
could be performed by Device Manager 132 of Device 130 of FIG. 1 A, for example. The 
steps of FIG. 2 may be performed by any suitable mechanism, including software, hardware, 
firmware, or a combination thereof. 

[0047] In block 160, a partial configuration for a network device is received. The partial 
configuration includes one or more commands that are associated with user interface 
elements. For example, the user interface elements may be data variable and user interface 
string tags, as described further below. 

[0048] In block 162, the partial configuration is parsed to identify the user interface 
elements. For example, the partial configuration is scanned to identify all user interface tags, 
user interface prompts or other information are extracted from the tags, and the prompts or 
other information are temporarily stored. 
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[0049] In block 164, a user interface page is generated. In one embodiment, Device 
Manager 132 generates HTML documents as its user interface, which a Web server in 
Device 130 serves to a computer system of User 142. A browser executed by the computer 
system displays the HTML documents. Therefore, block 164 may involve retrieving an 
HTML template for a configuration page of a user interface associated with the Device 
Manager 132, inserting one or more user interface prompt strings or other information into 
the template, and dynamically creating a final HTML user interface page that includes the 
prompt strings or other information. 

[0050] In block 166, one or more configuration parameters are received through the user 
interface page. For example, a user enters one or more configuration parameter values in 
response to prompts in the user interface page, and selects a Submit button or an equivalent 
user interface widget. In response, the browser submits the parameter values to the Web 
server of Device 130, which passes the parameter values to Device Manager 132. 
[0051] In block 168, the configuration parameter values are substituted into the partial 
configuration to create a complete configuration. As a result, a device acquires a complete 
configuration that includes the parameter values that are entered. The complete configuration 
may be applied to the device, enabling the device to operate as expected by the service 
provider. 

[0052] FIG. 3 is a flow diagram that illustrates another embodiment of a method for 
automatically configuring a network device. The process of FIG. 3 shows additional steps 
that are performed by elements other than the Device Manager. For purposes of illustrating a 
clear example, the process of FIG. 3 is described herein with reference to FIG. 4, which is a 
block diagram of the network context of FIG. 1 A showing messages and communications 
that are carried out as part of performing the process of FIG. 3. 
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[0053] Referring first to FIG. 3, in block 302, a generic configuration template is created 
for network devices; the configuration template includes commands that are associated with 
user interface elements. According to one specific embodiment, a configuration template file 
comprises one or more template file tags and one or more dynamic tags. A template file tag is 
a set of string values that are delimited by the characters and '>'. In an example 
embodiment, a template file tag is an association of a Data Variable, GUI String, Data Type, 
and Settings Type. For example, a configuration template file could comprise a line of the 
form: 

dns-server <PRIMARY_DNS_SERVER, "Primary DNS Server Address", 

IP Address, "General Settings"> 
In this example, "dns-server" is a network device configuration command, 
PRIMARY JDNS_SERVER denotes a data variable, "Primary DNS Server Address" is a 
string value associated with the variable that will be displayed in a user interface page to 
prompt the user to enter the value, IP Address is a data type of the variable, and General 
Settings is a settings type. 

[0054] The Data Variable is a variable tag that the value entered by the user. It names a 
storage variable for the user-entered data. The configuration template may reference a Data 
Variable any number of times in lines appearing after the first appearance of the Data 
Variable in a template file tag. For example, if a configuration template contains the 
following template file tag, 

dns-server <PRIMARYJDNS_SERVER, "Primary DNS Server Address", 

IPAddress, "General Settings"> 
then a subsequent line of the configuration template could contain a line referencing the Data 
Variable, such as: 
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ip name-server <PRIMARY_DNS_SERVER> 
[0055] Within a template file tag, the GUI String component specifies a text string that is 
displayed in a setup user interface page that is generated and displayed by a setup application 
executed in the network device. An example of a suitable setup application is Cisco Router 
Web Setup, which is commercially available from Cisco Systems, Inc., San Jose, California, 
and typically provided with CPE router devices such as residential or small business 
broadband routers. 

[0056] The GUI String is displayed as part of a setup user interface page, as described 
further below. In one embodiment, the GUI String comprises about 30 characters including 
special characters and white space characters. A service provider may place any desired text 
or information in a GUI String in a particular template file tag. Thus, the use of the GUI 
String in combination with the other approaches described herein enable a service provider to 
customize the appearance of a user interface that provides network device setup functions. 
[0057] The Data Type component or tag specifies the type of the associated Data 
Variable. The setup application uses the value of the Data Type component to determine 
whether a configuration parameter value entered by a user matches the specified data type. 
Using this approach, the setup application can trap data entry errors by the user and prompt 
the user to re-enter data, if appropriate. 

[0058] The Settings Type tag may specify a class or type of settings associated with the 
Data Variable. Alternatively, in one embodiment, the Settings Type tag is omitted. 
[0059] The Data Type tag can specify that the Data Variable is optional. In one 
embodiment, when the Data Type tag has the suffix "^Optional," then the Data Variable is 
optional. In one specific embodiment, the Data Type is selected from a set consisting of the 
values shown in Table 1: 
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TABLE 1— EXAMPLE DATA TYPE VALUES 



Data Type 


Description 


Examples 


IPAddress 


This says the data variable is an IP 
Address field 


10.10.10.1 


IPAddress_Optional 


This says the data variable is an IP 
Address field. But this is 
considered as an optional field and 
user can proceed without entering 
any values. 


Can be empty or any valid 
IP address 


SubnetMask 


This says the data variable is an 
subnet mask field 


Valid subnet mask like 
255.255.0.0 


DialPattern 


Dial Pattern for voice 


123232 


DialPatternOptional 


Optional field for voice dial 
pattern. 


Can be empty. 


VCI 


ATM Virtual Channel Identifier 


8 ; 


VPI 


ATM Virtual Path Identifier 


35 


Username 


PPP Username 


Tommy 


Password 


PPP Password 
(Should be followed by 
ConfirmPassword data type. 
Always appears in "*" for every 
character user types.) 


Max 


ConfirmPassword 


PPP Confirm Password. This tag is 
used to re confirm the entered 
password. User should enter the 
same values in both Password and 
Confirm Password fields. 


Should be same as 
password entered. 


Gateway 


Gate way address 


192.135.243.2 


Hostname 


Hostname for DHCP Option 12 


ATT 


Groupname 


Group name for Easy VPN 


Mark 


Groupkey 


Group Key for Easy VPN. (This 
data type is always followed 
Confirmgroupkey. Always appears 
in"*"). 


Lab 


Confirmgroupkey 


Confirm Group key, this does the 
similar function of Confirm 
Password. 


Same as group key 


PeerlPAddress 


Peer ip address for Easy VPN. 


172.16.10.2 


Gateway_Optional 


This is optional field for the 
Gateway 




Hostname_Optional 


This is optional field for the Host 
name 
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[0060] Referring now to FIG. 4, in one approach, Service Provider 120 creates the 
generic template 122, as indicated by numeral 1. In block 304, the generic configuration 
template is stored in one or more network devices. The generic configuration template may 
be stored by Vendor 1 10 in devices that the vendor makes for the Service Provider 120 and 
later "drop ships" directly to customer premises. Alternatively, Vendor 110 may ship devices 
having a default configuration to a warehouse or other facility of the Service Provider, and 
the Service Provider may install the generic configuration template in such devices as part of 
readying the devices for shipment. The generic configuration template 136 is shown in 
Device 130 in FIG. 4. 

[0061] In block 306, a device is shipped to customer premises. As shown by numeral 2 of 
FIG. 4, shipment may involve "drop shipment" from Vendor 1 10 to Subscriber 140, or 
shipment from Service Provider 120 to Subscriber 140. In block 308, the device is placed in 
service. For example, User 142 sets up Device 130 and applies power, which causes the 
device to initiate a boot process. 

[0062] In block 310, the configuration template is read. For example, Device Manager 
132 reads Configuration Template 136, as shown by numeral 3 in FIG. 4. In block 312, the 
configuration template is parsed to identify user interface elements. Such parsing may 
involve the same process as described above for block 162 of FIG. 2. 
[0063] In block 3 14, a user interface page is generated. Block 314 may involve the same 
page generation techniques described above for block 164 of FIG. 2. The resulting user 
interface page may be served to the user, as indicated by numeral 4 of FIG. 4. In block 316, 
configuration parameter values are received via the user interface page. Block 316 may 
involve the same techniques described above for block 166 of FIG. 2. Numeral 5 of FIG. 4 
represents Device Manager 132 receiving configuration parameter values from a user. 
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[0064] In block 3 1 8, the configuration parameter values are substituted into the generic 
configuration template to create a complete configuration. The techniques described above 
for block 168 may be used. Numeral 6 of FIG. 4 represents performing value substitution to 
result in generating a Final Configuration 138. In block 320, the complete configuration is 
applied to the device. 

[0065] In block 322, the device contacts a service provider or otherwise initiates 
operation, as represented by numeral 7 of FIG. 4. 

[0066] In one embodiment, the configuration template also may include dynamic tags, 
which are elements of a configuration template that are not associated with configuration 
parameter values that are entered by a user. Dynamic tags designate values that are 
determined dynamically by the setup application, and substituted into the final configuration. 
In one embodiment, dynamic tags are delimited by single quotation marks. 
[0067] Dynamic tags enable a service provider to specify values in a configuration 
template that are dynamically determined when the network device is running, and then 
substituted into the final configuration. For example, a dynamic tag may be provided in a 
configuration template file to cause dynamic updating of an Ethernet IP address. As a 
specific example, a configuration template includes the line: 

default-router 'E0IP Address 1 . 
When this line is processed, the setup application executed by the network device 
dynamically substitutes into the configuration the value of the Ethernet IP address that is then 
currently used by the network device. 

[0068] In one specific embodiment, the setup application can process the dynamic tags 
specified in Table 2. In other embodiments, other dynamic tags may be processed. 
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TABLE 2— EXAMPLE DYNAMIC TAGS 



Data Type 


Description 


•EOIP Address' 


Ethernet IP Address will be substituted. If the EO ip 
address is changed the changed ip address will be 
configured. 


•EOMask' 


Ethernet Subnet mask will be substituted. If the EO ip 
address is changed the changed mask will be 
configured. 


*Nat AccessList Number 1 


NAT access list number 


'Network Address InverseMask' 


Network address and inverse mask together 



[0069] Using the approaches described herein, a configuration template file having any 

desired contents may be created. The configuration template file may include any 

configuration command that is supported by the network device that uses the final 

configuration that is created from the configuration template file. Table 3 provides a 

complete example of a configuration template that is appropriate for use with a network 

device that uses PPPoE for authentication in a VPN context. Of course, any other form of 

configuration template may be created using the approaches herein. 

TABLE 3— EXAMPLE TEMPLATE CONFIGURATION 

! Cisco IOS router configuration file 

! Designed for Cisco 806 

! Cisco Router Web Setup Template 

! removing ConfigExp.cfg commands delivered for 806 

no ip nat inside source list f Nat__AccessList_Number f interface Ethernet 1 

overload 

no access-list Nat_AccessList_Number f permit ip 

f Network_Address_InverseMask f any 
i 

! 

ip dhcp excluded-address 'EOIP Address' 
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! 

ip dhcp pool CLIENT 
no import all 
import all 

network 'Network_Address f 'EOMask 1 
default-router 'EOIP Address' 

! 
f 

no ip name-server 

ip domain-lookup 

ip ssh time-out 120 

ip ssh authentication-retries 3 

vpdn enable 

! 

vpdn-group 1 
request-dialin 
protocol pppoe 



crypto ipsec client ezvpn crws-client 

group <GROUPNAME, "Group Name", groupname, "General Settings"> key 
<GROUPKEY 3 "Group Password", groupkey, "General 
Settings"xCONFIRMGROUPPASSWORD, "Confirm Group Password", 
Confirmgroupkey, "General Settings"> 
mode client 

peer <PEERIP ADDRESS, "Peer IP Address", PeerIP Address, "General 

Settings"> 

! 

! 

interface EthernetO 
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ip tcp adjust-mss 1348 
no cdp enable 
no ip nat inside 
hold-queue 32 in 
hold-queue 100 out 

! 

interface Ethernet 1 
no ip address 
pppoe enable 

pppoe-client dial-pool-number 1 
no ip nat outside 
no cdp enable 

f 

interface Dialerl 
ip address negotiated 
ip mtu 1492 
encapsulation ppp 
ip tcp adjust-mss 1348 
dialer pool 1 
dialer-group 1 
no ip nat outside 

ppp authentication chap pap callin 

PPP P a P sent-username <USERNAME, "User Name", username, "General 

Settings'^ password <PASSWORD, "Password", Password , "General 

Settings"><CONFIRMPASSWORD, "Confirm Password", ConfirmPassword 

, "General Settings"> 

ppp chap hostname <USERNAME> 

ppp chap password <PASSWORD> 

ppp ipcp dns request 

ppp ipcp wins request 

crypto ipsec client ezvpn crws-client 
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! 

ip classless 

ip route 0.0.0.0 0.0.0.0 Dialerl 

ip http server 

t 

dialer-list 1 protocol ip permit 
t 

end 

[0070] The general approaches herein are adaptable to many kinds of network devices, 
configuration management tools, and configuration formats. Although the technology 
described herein has been developed by Cisco Systems, Inc. for its products, the approaches 
herein are generally applicable to the products of other makers of network devices. 
[0071] In one specific embodiment, the configuration management tool is Cisco Router 
Web Setup (CRWS); further, the partial configuration is a configuration template file that 
contains all the Cisco IOS commands needed to configure a CPE router configuration. A 
service provider, such as an ISP, can edit the configuration template file to customize 
prompts and other text that appears in a graphical user interface, such as in the CRWS Quick 
Setup user interface pages. For example, an ISP can create a file named ISP.cfg based on the 
approaches herein and can place the created file with other CRWS files in non- volatile 
memory of a router. The CRWS Quick Setup GUI is then generated based on the template 
tags given in the ISP.cfg file, and the resulting final configuration is based on the contents of 
the ISP.cfg file. 
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4.0 IMPLEMENTATION MECHANISMS - HARDWARE OVERVIEW 
[0072] FIG. 5 is a block diagram that illustrates a computer system 500 upon which an 
embodiment of the invention may be implemented. The preferred embodiment is 
implemented using one or more computer programs running on a network element such as a 
router device. Thus, in this embodiment, the computer system 500 is a router. 
[0073] Computer system 500 includes a bus 502 or other communication mechanism for 
communicating information, and a processor 504 coupled with bus 502 for processing 
information. Computer system 500 also includes a main memory 506, such as a random 
access memory (RAM), flash memory, or other dynamic storage device, coupled to bus 502 
for storing information and instructions to be executed by processor 504. Main memory 506 
also may be used for storing temporary variables or other intermediate information during 
execution of instructions to be executed by processor 504. Computer system 500 further 
includes a read only memory (ROM) 508 or other static storage device coupled to bus 502 
for storing static information and instructions for processor 504. A storage device 510, such 
as a magnetic disk, flash memory or optical disk, is provided and coupled to bus 502 for 
storing information and instructions. 

[0074] A communication interface 518 may be coupled to bus 502 for communicating 
information and command selections to processor 504. Interface 518 is a conventional serial 
interface such as an RS-232 or RS-422 interface. An external terminal 512 or other computer 
system connects to the computer system 500 and provides commands to it using the interface 
514. Firmware or software running in the computer system 500 provides a terminal interface 
or character-based command interface so that external commands can be given to the 
computer system. 
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[0075] A switching system 516 is coupled to bus 502 and has an input interface 514 and 
an output interface 519 to one or more external network elements. The external network 
elements may include a local network 522 coupled to one or more hosts 524, or a global 
network such as Internet 528 having one or more servers 530. The switching system 516 
switches information traffic arriving on input interface 514 to output interface 519 according 
to pre-determined protocols and conventions that are well known. For example, switching 
system 516, in cooperation with processor 504, can determine a destination of a packet of 
data arriving on input interface 514 and send it to the correct destination using output 
interface 519. The destinations may include host 524, server 530, other end stations, or other 
routing and switching devices in local network 522 or Internet 528. 
[0076] The invention is related to the use of computer system 500 for automatically 
generating a configuration for a network device, and for providing configuration 
customization for network service providers. According to one embodiment of the invention, 
automatically generating a configuration for a network device, or providing configuration 
customization for network service providers, is provided by computer system 500 in response 
to processor 504 executing one or more sequences of one or more instructions contained in 
main memory 506. Such instructions may be read into main memory 506 from another 
computer-readable medium, such as storage device 510. Execution of the sequences of 
instructions contained in main memory 506 causes processor 504 to perform the process 
steps described herein. One or more processors in a multi-processing arrangement may also 
be employed to execute the sequences of instructions contained in main memory 506. In 
alternative embodiments, hard- wired circuitry may be used in place of or in combination with 
software instructions to implement the invention. Thus, embodiments of the invention are 
not limited to any specific combination of hardware circuitry and software. 
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[0077] The term "computer-readable medium" as used herein refers to any medium that 
participates in providing instructions to processor 504 for execution. Such a medium may 
take many forms, including but not limited to, non- volatile media, volatile media, and 
transmission media. Non- volatile media includes, for example, optical or magnetic disks, 
such as storage device 510. Volatile media includes dynamic memory, such as main memory 
506. Transmission media includes coaxial cables, copper wire and fiber optics, including the 
wires that comprise bus 502. Transmission media can also take the form of acoustic or light 
waves, such as those generated during radio wave and infrared data communications. 
[0078] Common forms of computer-readable media include, for example, a floppy disk, a 
flexible disk, hard disk, magnetic tape, or any other magnetic medium, a CD-ROM, any other 
optical medium, punch cards, paper tape, any other physical medium with patterns of holes, a 
RAM, a PROM, and EPROM, a FLASH-EPROM, any other memory chip or cartridge, a 
carrier wave as described hereinafter, or any other medium from which a computer can read. 
[0079] Various forms of computer readable media may be involved in carrying one or 
more sequences of one or more instructions to processor 504 for execution. For example, the 
instructions may initially be carried on a magnetic disk of a remote computer. The remote 
computer can load the instructions into its dynamic memory and send the instructions over a 
telephone line using a modem. A modem local to computer system 500 can receive the data 
on the telephone line and use an infrared transmitter to convert the data to an infrared signal. 
An infrared detector coupled to bus 502 can receive the data carried in the infrared signal and 
place the data on bus 502. Bus 502 carries the data to main memory 506, from which 
processor 504 retrieves and executes the instructions. The instructions received by main 
memory 506 may optionally be stored on storage device 510 either before or after execution 
by processor 504. 
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[0080] Communication interface 5 1 8 also provides a two-way data communication 
coupling to a network link 520 that is connected to a local network 522. For example, 
communication interface 518 may be an integrated services digital network (ISDN) card or a 
modem to provide a data communication connection to a corresponding type of telephone 
line. As another example, communication interface 518 may be a local area network (LAN) 
card to provide a data communication connection to a compatible LAN. Wireless links may 
also be implemented. In any such implementation, communication interface 518 sends and 
receives electrical, electromagnetic or optical signals that carry digital data streams 
representing various types of information. 

[0081] Network link 520 typically provides data communication through one or more 
networks to other data devices. For example, network link 520 may provide a connection 
through local network 522 to a host computer 524 or to data equipment operated by an 
Internet Service Provider (ISP) 526. ISP 526 in turn provides data communication services 
through the worldwide packet data communication network now commonly referred to as the 
"Internet" 528. Local network 522 and Internet 528 both use electrical, electromagnetic or 
optical signals that carry digital data streams. The signals through the various networks and 
the signals on network link 520 and through communication interface 518, which carry the 
digital data to and from computer system 500, are exemplary forms of carrier waves 
transporting the information. 

[0082] Computer system 500 can send messages and receive data, including program 
code, through the network(s), network link 520 and communication interface 518. In the 
Internet example, a server 530 might transmit a requested code for an application program 
through Internet 528, ISP 526, local network 522 and communication interface 518. In 
accordance with the invention, one such downloaded application provides for automatically 
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generating a configuration for a network device, or providing configuration customization for 
network service providers as described herein. 

[0083] The received code may be executed by processor 504 as it is received, and/or 
stored in storage device 5 10, or other non-volatile storage for later execution. In this manner, 
computer system 500 may obtain application code in the form of a carrier wave. 

5.0 EXTENSIONS AND ALTERNATIVES 

[0084] In the foregoing specification, the invention has been described with reference to 
specific embodiments thereof. It will, however, be evident that various modifications and 
changes may be made thereto without departing from the broader spirit and scope of the 
invention. The specification and drawings are, accordingly, to be regarded in an illustrative 
rather than a restrictive sense. 
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